CVE-2026-26324
Received Received - Intake
SSRF Bypass via IPv4-Mapped IPv6 in OpenClaw AI Assistant

Publication date: 2026-02-19

Last updated on: 2026-02-23

Assigner: GitHub, Inc.

Description
OpenClaw is a personal AI assistant. Prior to version 2026.2.14, OpenClaw's SSRF protection could be bypassed using full-form IPv4-mapped IPv6 literals such as `0:0:0:0:0:ffff:7f00:1` (which is `127.0.0.1`). This could allow requests that should be blocked (loopback / private network / link-local metadata) to pass the SSRF guard. Version 2026.2.14 patches the issue.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2026-02-19
Last Modified
2026-02-23
Generated
2026-04-27
AI Q&A
2026-02-20
EPSS Evaluated
2026-04-26
NVD
CVE-2026-26324
Affected Vendors & Products
Showing 1 associated CPE
Vendor Product Version / Range
openclaw openclaw to 2026.2.14 (exc)
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-918 The web server receives a URL or similar request from an upstream component and retrieves the contents of this URL, but it does not sufficiently ensure that the request is being sent to the expected destination.
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?

This vulnerability affects OpenClaw, a personal AI assistant. Before version 2026.2.14, OpenClaw's Server-Side Request Forgery (SSRF) protection could be bypassed by using full-form IPv4-mapped IPv6 literals, such as '0:0:0:0:0:ffff:7f00:1', which corresponds to the IPv4 loopback address 127.0.0.1. This bypass allowed requests that should have been blockedβ€”such as those targeting loopback, private network, or link-local metadata addressesβ€”to pass through the SSRF protection.


How can this vulnerability impact me? :

This vulnerability can allow an attacker to bypass SSRF protections and send unauthorized requests to internal or sensitive network addresses that should normally be blocked. This could lead to unauthorized access to internal services or metadata endpoints, potentially exposing sensitive information or enabling further attacks within the internal network.


How does this vulnerability affect compliance with common standards and regulations (like GDPR, HIPAA)?:

I don't know


How can this vulnerability be detected on my network or system? Can you suggest some commands?

I don't know


What immediate steps should I take to mitigate this vulnerability?

To mitigate this vulnerability, you should upgrade OpenClaw to version 2026.2.14 or later, as this version patches the SSRF protection bypass issue.


Ask Our AI Assistant
Need more information? Ask your question to get an AI reply (Powered by our expertise)
0/70
EPSS Chart